CVE-2013-0002

Name of the Vulnerable Software and Affected Versions Microsoft .NET Framework versions 1.0 SP3 through 4.5

Description A buffer overflow issue in the Windows Forms component allows remote attackers to execute arbitrary code via a crafted XAML browser application or a .NET Framework application. This is due to improper counting of objects during a memory copy operation. An elevation of privilege vulnerability also exists in the way a Windows Forms method validates the number of objects in memory before copying those objects into an array. If exploited, an attacker could take complete control of an affected system, install programs, view, change, or delete data, or create new accounts with full user rights.

Recommendations For Microsoft .NET Framework versions 1.0 SP3 through 4.5, at the moment, there is no information about a newer version that contains a fix for this vulnerability.